Home page logo
/

firewall-wizards logo Firewall Wizards mailing list archives

Re: accessing SMTP server via the translated address
From: "Rudy Setiawan" <rudal () online rudal com>
Date: Sat, 13 Dec 2008 09:30:05 -0800

Wohoo yeah this works :)

Thanks Farrukh and others.

the intra-interface + the static (inside,inside) is working.

Thanks so muchhh once again


Cheers,
Rudy

On Sat, Dec 13, 2008 at 1:43 AM, Farrukh Haroon <farrukhharoon () gmail com> wrote:
Hello Rudy

Have a look at this link:

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00807968d1.shtml#problem

Regards

Farrukh

On Fri, Dec 12, 2008 at 12:17 PM, Rudy Setiawan <rudal () online rudal com>
wrote:

Hi,

we have a firewall, both outside and inside interfaces.
We have a SMTP server that lives in the inside network
and it's translated to a public IP on the outside interface.
SMTP inside IP: 10.10.1.2
Translated IP: 216.15.4.4
in the pix (version 7.2.3)
static (inside,outside) 216.15.4.4 10.10.1.2 netmask 255.255.255.255

I have a workstation with IP 10.10.1.4 which has a translated IP of
216.15.4.6
From my workstation I tried to access 216.15.4.4 port 25 or ping
216.15.4.4. I got request timed out.

I have access-list that allows icmp as well as port 25 on the 216.15.4.4
IP.
I am able to access port 25 and ping the IP from anywhere in the world.

How can I permit such traffic?

Thanks,
Rudy
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards


_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]